$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/777818EE811411EABAD68C17C4F9AE02.roa File: 777818EE811411EABAD68C17C4F9AE02.roa (raw, json) Hash identifier: yLBCrU/9RvuI/3Ay5n3EAF4Spgkoeqo4m1QHvpK9Jp0= Subject key identifier: F2:87:24:7A:99:B0:ED:E5:B6:71:B9:DC:6E:5A:06:D1:2C:78:24:E7 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19DB Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/777818EE811411EABAD68C17C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:53 +0000 ROA not before: Fri 20 Feb 2026 17:15:02 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 55561 IP address blocks: 125.168.221.0/24 maxlen: 24 125.168.222.0/24 maxlen: 24 125.168.223.0/24 maxlen: 24 203.57.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6619 (0x19db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:15:02 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a8d-f48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:43:20:e7:00:ae:96:be:10:35:e7:5c:fd:50: 9b:01:d5:1b:b7:7f:e3:a0:f6:e7:4a:f3:27:67:5a: 24:7e:2f:1b:c7:02:de:fe:32:d3:ca:0e:33:7c:ae: 9e:41:6c:b6:b7:d9:02:50:95:b6:52:51:bf:59:32: e0:74:04:31:48:73:fb:1c:52:52:52:24:da:5b:45: 9b:86:e2:c2:69:72:91:e0:9a:22:de:00:ea:5e:3a: 88:9e:c9:3e:7f:6d:07:de:04:de:a5:00:ed:87:e6: 56:24:da:9d:7e:00:ff:21:33:92:91:a9:4c:ac:7e: fb:6e:d9:9d:72:2e:22:78:ed:5a:64:18:f7:5b:bf: 8c:d9:40:9e:a9:f3:e4:09:0f:b2:46:b6:94:f5:58: 83:49:b1:45:81:d6:62:6f:cc:e0:95:d5:6a:35:15: d4:3f:34:3c:b0:62:51:b6:5a:8c:0d:8f:e5:1f:b0: 53:94:2f:ac:fb:3e:d0:8a:2d:c8:ce:02:68:0e:b4: ae:0a:b5:25:ae:a5:3a:77:9c:8a:2c:85:fb:c6:cd: 04:20:ac:2d:45:02:cd:9a:d7:e2:b0:99:01:1b:82: cf:6e:38:dc:13:36:1b:ee:63:ca:f1:9d:ec:25:26: fc:88:4f:a9:b2:3d:37:12:4e:22:c1:b0:fb:ad:1c: bb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:87:24:7A:99:B0:ED:E5:B6:71:B9:DC:6E:5A:06:D1:2C:78:24:E7 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/777818EE811411EABAD68C17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.168.221.0-125.168.223.255 203.57.203.0/24 Signature Algorithm: sha256WithRSAEncryption 19:7b:e5:f1:8d:1a:3a:83:e1:a6:72:ea:87:88:2b:51:55:4e: f1:61:c0:14:9e:be:b3:7f:78:d4:0d:41:b3:6e:69:61:ad:53: fc:a2:9e:d2:32:0b:42:a4:75:0d:10:75:8e:8e:ef:a9:d2:5f: 07:69:79:3a:bd:d6:4f:75:d8:11:16:db:cd:13:1d:4b:7e:c3: 20:64:ae:97:d0:ff:5a:99:95:c4:b7:06:38:ce:a5:fc:3a:31: 7f:d8:b8:25:74:93:d9:79:a6:3f:dc:33:e3:de:bc:a1:b9:ff: 54:bf:f2:ca:d6:8c:12:7c:fc:99:9e:5a:b8:8e:f4:96:e7:ff: 81:22:f7:05:07:29:70:c7:c9:90:a8:03:cd:b6:b1:65:f5:7a: f9:0a:ef:fa:37:c5:53:0b:f1:34:e6:ff:d0:07:eb:f2:3b:79: 52:0a:9f:93:1e:da:51:2a:46:3a:e0:a4:12:5e:1b:75:67:33: 4c:2a:7b:ca:2c:3d:49:cd:ac:d2:51:e0:fa:0c:99:a3:45:de: ca:6b:da:2e:9f:8d:93:e9:33:d4:e8:0b:20:91:66:1a:f8:4f: 80:47:f1:b9:71:23:c3:0e:6d:f8:d9:51:91:be:d9:23:20:a4: 95:8e:7e:33:03:bb:fa:1f:2b:cb:f5:d4:95:0b:99:b7:b4:45: 69:64:7e:84 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICGdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNTAyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE4ZC1mNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0Mg5wCulr4QNedc/VCbAdUbt3/joPbnSvMnZ1okfi8bxwLe/jLTyg4zfK6e QWy2t9kCUJW2UlG/WTLgdAQxSHP7HFJSUiTaW0WbhuLCaXKR4Joi3gDqXjqInsk+ f20H3gTepQDth+ZWJNqdfgD/ITOSkalMrH77btmdci4ieO1aZBj3W7+M2UCeqfPk CQ+yRraU9ViDSbFFgdZib8zgldVqNRXUPzQ8sGJRtlqMDY/lH7BTlC+s+z7Qii3I zgJoDrSuCrUlrqU6d5yKLIX7xs0EIKwtRQLNmtfisJkBG4LPbjjcEzYb7mPK8Z3s JSb8iE+psj03Ek4iwbD7rRy7fQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFPKHJHqZ sO3ltnG53G5aBtEseCTnMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNzc3ODE4RUU4 MTE0MTFFQUJBRDY4QzE3QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAB9qN0DBAV9qMADBADLOcswDQYJKoZIhvcNAQELBQADggEBABl7 5fGNGjqD4aZy6oeIK1FVTvFhwBSevrN/eNQNQbNuaWGtU/yintIyC0KkdQ0QdY6O 76nSXwdpeTq91k912BEW280THUt+wyBkrpfQ/1qZlcS3BjjOpfw6MX/YuCV0k9l5 pj/cM+PevKG5/1S/8srWjBJ8/JmeWriO9Jbn/4Ei9wUHKXDHyZCoA822sWX1evkK 7/o3xVML8TTm/9AH6/I7eVIKn5Me2lEqRjrgpBJeG3VnM0wqe8osPUnNrNJR4PoM maNF3spr2i6fjZPpM9ToCyCRZhr4T4BH8blxI8MObfjZUZG+2SMgpJWOfjMDu/of K8v11JULmbe0RWlkfoQ= -----END CERTIFICATE-----Generated at Mon Mar 2 13:36:45 2026 by rpki-client